Jump to content

Win32/RiskWare.RemoteAdmin.RemoteExec


Recommended Posts

Yes, it is constantly detected and deleted on all systems on the network

Why do it again?

Link to comment
Share on other sites

  • Administrators

The malware is being copied to network shares from a remote machine with SR**********S\Administrator logged in.

Please carry on as follows:
- close any unnecessary network-aware applications that generate network traffic
- enable advanced network protection logging in the adv. setup -> tools -> diagnostics
- wait until the malware is detected
- disable logging
- collect fresh logs with ELC.

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...